F5 Expands SaaS-Based Security Portfolio with Launch of F5 Distributed Cloud App Infrastructure Protection

Rhea-AI Summary

F5 (NASDAQ: FFIV) has launched the F5 Distributed Cloud App Infrastructure Protection (AIP), a cloud workload protection solution aimed at enhancing application observability and security in cloud-native environments. This new solution, acquiring technology from Threat Stack, addresses challenges posed by complex hybrid infrastructures and vulnerabilities like Log4j. AIP features real-time threat detection, anomaly identification, and supportive managed security services, helping customers secure workloads across various platforms.

Positive

• Launch of F5 Distributed Cloud AIP enhances security for cloud-native infrastructures.
• Real-time threat detection and anomaly identification improve protection capabilities.
• Managed Security Services provide ongoing threat detection and remediation support.

Negative

• Complexity of hybrid infrastructures remains a significant challenge for customers.
• Vulnerabilities in existing systems could expose applications to security risks.

F5 Distributed Cloud Services now enables customers to protect both applications and the infrastructure where they run

SEATTLE--(BUSINESS WIRE)-- F5 (NASDAQ: FFIV) today announced the launch of F5 Distributed Cloud App Infrastructure Protection (AIP), a cloud workload protection solution that expands application observability and protection to cloud-native infrastructures. Powered by technology acquired with Threat Stack, AIP is the newest addition to the F5 Distributed Cloud Services portfolio of cloud-native SaaS-based application security and delivery services.

Organizations of all sizes across industries are in the midst of efforts aimed at simplifying, securing, and innovating application-driven digital experiences. However, many face the challenge of managing distributed and hybrid application infrastructures composed of workloads across on-premises, public cloud, and edge locations. This creates tremendous complexity and increases the security threat surface, and as a result customers are forced to deploy inconsistent security controls and lack necessary visibility, particularly for cloud-native deployments.

Attacks such as those exploiting Log4j and Spring4Shell can evade signature-based detection defense mechanisms and target vulnerabilities and misconfigurations within application infrastructure. Distributed Cloud AIP brings deep telemetry collection and high-efficacy intrusion detection for cloud-native workloads and—when combined with the in-line application and API security from F5 Distributed Cloud WAAP—delivers a defense-in-depth approach to security threats that span across applications, APIs, and the cloud-native infrastructures where they run.

“Organizations are managing a dauntingly complex mix of hybrid and multi-cloud application architectures that can slow the pace of digital innovation and create subsequent security risks,” said Kara Sprague, Executive Vice President and Chief Product Officer, F5. “The addition of AIP fills a critical need for customers as they look for ways to extend robust security controls to multiple cloud infrastructures where they run their modern applications.”

A large majority of organizations are now deploying microservices-based applications on cloud-native infrastructure and connecting them through APIs. This approach to application development can radically increase the pace of innovation while lowering total cost of ownership. However, vulnerabilities and misconfigurations at the infrastructure level leave these applications open to attack from both internal and external bad actors. These intruders leverage vulnerabilities in cloud services or stolen keys to get access to cloud-native resources, where they can move freely throughout the infrastructure, inject malware, run cryptominers, or access sensitive data.

F5 Distributed Cloud App Infrastructure Protection addresses these challenges through:

• A combination of rules and machine learning to detect threats in real time across the entire infrastructure stack: cloud provider APIs, virtual machine instances, containers, and Kubernetes. With behavioral-based detection, AIP can identify insider threats, external threats, and data loss risk for modern applications.
• Detection and alert of anomalous behavior impacting workloads to inform operations teams of potentially malicious activity that may require further action to block or remediate.
• Complementing existing signature- and behavioral-based threat detection capabilities with actionable insights from advanced telemetry and detection of post-exploit activity at the app and cloud infrastructure level.
• F5 Distributed Cloud AIP Managed Security Services, an “always-on” Security Operations Center team that detects, triages, and investigates threats and provides remediation recommendations on behalf of customers.
• F5 Distributed Cloud AIP Insights, providing custom platform analytics and ongoing coaching from F5’s cloud security experts to help customers build a stronger cloud SecOps strategy and better achieve their goals.

More information can be found on the product page of f5.com.

Additional Resources

• A Conversation with Kara Sprague, EVP and Chief Product Officer – F5 Q&A
• Enhancing Modern App Security: Introducing F5 Distributed Cloud AIP – F5 Blog Post
• F5 Appoints Kara Sprague as Chief Product Officer – F5 Press Release

About F5

F5 is a multi-cloud application services and security company committed to bringing a better digital world to life.​​​​​​​ F5 partners with the world’s largest, most advanced organizations to secure and optimize every app and API anywhere—on premises, in the cloud, or at the edge. F5 enables organizations to provide exceptional, secure digital experiences for their customers and continuously stay ahead of threats. For more information, go to f5.com. (NASDAQ: FFIV)

You can also follow @F5 on Twitter or visit us on LinkedIn and Facebook for more information about F5, its partners, and technologies.

F5 is a trademark, service mark, or tradename of F5, Inc., in the U.S. and other countries. All other product and company names herein may be trademarks of their respective owners.

Source: F5, Inc.

View source version on businesswire.com: https://www.businesswire.com/news/home/20221215005316/en/

Teri Daley

F5

(469) 939-3712

t.daley@f5.com

Holly Lancaster

WE Communications

(415) 547-7054

hluka@we-worldwide.com

Source: F5, Inc.

FAQ

What is F5 Distributed Cloud App Infrastructure Protection (AIP)?

F5 Distributed Cloud AIP is a cloud workload protection solution designed to enhance the security and observability of cloud-native infrastructures.

How does F5 AIP improve security for cloud-native applications?

F5 AIP offers real-time threat detection and anomaly identification to help secure workloads across various environments, including on-premises and cloud.

Which technology does F5 AIP utilize?

F5 AIP incorporates technology acquired from Threat Stack to enhance its security features.

What challenges does F5 AIP address for organizations?

F5 AIP addresses challenges related to managing complex hybrid infrastructures and threats that exploit vulnerabilities in application configurations.

What are the key features of F5 Distributed Cloud AIP?

Key features include real-time threat detection, behavior-based detection, managed security services, and custom analytics for improving cloud security.